Re: New key = New package?

To: Bolan.Meek@wcom.com, bolan@koyote.com, debian-mentors@lists.debian.org
Cc: debian-mentors@lists.debian.org
Subject: Re: New key = New package?
From: Buddha Buck <bmbuck@14850.com>
Date: Fri, 18 Aug 2000 15:37:56 -0400
Message-id: <[🔎] 4.3.2.7.0.20000818152135.00af5e20@armstrong.cse.buffalo.edu>
In-reply-to: <[🔎] 399D7655.BFF5C390@wcom.com>
References: <[🔎] 20000811235612.A2940@cyberus.ca> <[🔎] 20000818163626.A26365@sa-pc.cs.kau.se> <[🔎] 20000818173734.A12772@xs4all.nl>

At 12:45 PM 8/18/00 -0500, Bolan Meek wrote:

Richard Braakman wrote:
>
> On Fri, Aug 18, 2000 at 04:36:26PM +0200, Stefan Alfredsson wrote:
> > IIRC what happens is that a special signature is added to
> > your key which informs of the new expiredate,
> > and since this packet is signed by you its effectively as
> > if you'd choosen another expireday to begin with.
>
> If that really works, expiry is useless.
> The whole point of expiring keys is to reduce the risk of
> them being compromised during their lifetime
>  (by shortening the lifetime).
> If anyone who has the key can extend its expiry time, then what is the
> point?  You might as well not expire it in the first place.

Except that only the holder of the key -the knower of the passphrase-
is able to change that expiry, and then sign with it.  If one
is confident that the key has not been compromised, one ought
be able to keep the key effective.  Freedom includes the freedom
to change one's mind.


Alice signs her key, and sets it to expire on 31 December.

Bob shoulder-surfs Alice, and gets enough information to reduce thesearch-space of a brute-force pass-phrase search drastically (He know knowsit's 10-15 characters, two spaces, no shifted-characters). He also gets acopy of her secret key ring from an off-site backup which Alice was unaware of.

On 31 December, Alice starts using her new key, confident that the old keywill expire and become invalid. She has no reason to suspect it has beencompromised. She deletes her old key and keyring.

On 15 January, Bob succeeds in guessing "who goes there", and has Alice'sexpired secret key. He resets the clock in his computer to 15 December,and resets the expiry date of Alices key to the far future. Oops.

But I don't use expiry:  if I desire my keys to expire, I'll
revoke them.  Hmmm...  Could I then 'unrevoke' them later? I
think not:  that should be the choice of the keyserver... (?)


I think expiry and revocation should be irrefutable acts.

--
I'm on the list.

Bolan.Meek@wcom.com 972-729-5387
bolan@koyote.com (home ph. on Q) http://www.koyote.com/users/bolan
RE: xmailtool http://www.koyote.com/users/bolan/xmailtool/index.html
RMS of Borg: "Resistance is futile; you shall be freed."


--
To UNSUBSCRIBE, email to debian-mentors-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- New key = New package?
  - From: "Warren A. Layton" <zeevon@cyberus.ca>
- Re: New key = New package?
  - From: Stefan Alfredsson <stefan@alfredsson.org>
- Re: New key = New package?
  - From: Richard Braakman <dark@xs4all.nl>
- Re: New key = New package?
  - From: Bolan Meek <Bolan.Meek@wcom.com>

Prev by Date: Re: New key = New package?
Next by Date: Re: a bit policy, a bit devel [was: Re: Find the display]
Previous by thread: Re: New key = New package?
Next by thread: Turning around a symlink
Index(es):
- Date
- Thread